CVE-2026-3601 — The User Registration & Membership plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the `embed_form_action()` function in all versions u — CVE Database · The Intelligence Room